$ rpki-client -vvf rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft File: yIwqqUquXvn01JfoOHo53RvOk50.mft (raw, json) Hash identifier: NGieKEkcVm0Q81jcGxs4fXXnvY/PO35tJryrcGk3hpM= Subject key identifier: 35:AB:A5:85:8C:E3:87:3D:A2:6B:D6:D8:94:59:6C:D0:E2:7A:69:02 Authority key identifier: C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D Certificate issuer: /CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft Manifest number: 6C Signing time: Sun 19 May 2024 07:32:27 +0000 Manifest this update: Sun 19 May 2024 07:32:26 +0000 Manifest next update: Sun 26 May 2024 07:32:26 +0000 Files and hashes: 1: yIwqqUquXvn01JfoOHo53RvOk50.crl (hash: Bpb/bV438STEJ5FQHyrKSMWCP4qKl14eg2JUHWa4Fwk=) 2: EF98E11472E211EEB93A4F72C4F9AE02.roa (hash: irBKz5hDdDQSuzPo8HTBKaH+G3tFJbjs2+W0RwVXyv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Validity Not Before: May 19 07:32:26 2024 GMT Not After : May 26 07:32:26 2024 GMT Subject: CN=6649ab0a-2ccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c4:a7:86:22:01:a3:48:f5:06:c3:ee:4f:86: 35:35:27:73:49:7b:21:da:83:78:a3:01:f2:a9:42: 9b:a7:d9:a4:c9:62:1e:7a:fc:32:74:b2:e7:39:f3: fb:28:4f:32:05:ff:77:c8:c6:d2:2b:f5:d3:bc:ef: f3:db:4d:9e:5b:0b:2c:ca:6c:dc:07:3e:4f:3b:e6: e3:95:12:88:1d:2a:a4:e3:59:a2:6e:e8:23:74:6e: 63:a9:72:68:32:3f:66:16:03:68:bf:f9:80:15:c1: 08:7d:cb:fe:a5:80:d3:30:46:96:be:e5:ec:8a:f6: 25:f7:ca:dc:02:30:ab:ca:d9:b6:b3:12:97:a7:23: 4e:c3:87:7e:95:4e:b4:ea:52:51:d4:f9:63:a6:54: 27:be:b8:ca:64:06:15:1b:f1:7a:7d:08:14:99:24: e0:3a:a5:7f:23:9d:85:33:c3:7d:58:d0:cd:19:73: 35:28:b1:08:c3:32:36:b8:ad:0c:a3:90:fa:62:91: 2d:2c:46:77:09:33:26:ef:bc:47:17:47:6f:c4:b1: c6:9d:eb:e0:d3:4a:d8:87:78:5f:7e:1b:73:50:5b: 30:44:15:b3:96:49:fd:de:aa:03:b7:e5:4d:58:c5: 26:49:44:b1:55:40:26:c7:d5:ff:46:c6:9e:6c:10: 3d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AB:A5:85:8C:E3:87:3D:A2:6B:D6:D8:94:59:6C:D0:E2:7A:69:02 X509v3 Authority Key Identifier: keyid:C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:b8:74:83:d2:57:c6:ef:dc:ed:fa:b0:16:d9:bd:f7:06:ff: a5:d1:9f:3c:25:d0:c3:35:75:75:de:35:70:a4:c1:e8:85:c0: 35:1f:ce:d0:8b:88:d9:3f:fe:c0:8e:74:7f:c5:a5:58:d9:95: 4d:7d:93:07:e0:78:80:84:66:3e:27:6f:c1:63:8f:c1:a5:6e: f0:99:a1:25:92:1c:4c:0b:4e:46:56:be:ce:6d:30:9b:25:84: 82:5e:ad:e1:9f:6d:5f:07:4f:6d:7e:33:48:d9:e0:b2:f2:76: a4:cb:fe:b3:81:7a:c2:df:2e:90:ee:3a:d9:68:ec:83:b4:1f: 26:3c:a4:7e:92:c1:1e:03:89:90:80:0a:28:81:34:43:87:66: 8a:8e:d9:75:da:b9:07:5e:d5:c3:52:c3:89:be:68:56:76:6d: 49:64:44:87:fb:0d:77:92:b5:8e:e0:36:27:f4:b5:3f:2c:5c: 38:b3:71:35:42:1e:fd:54:38:56:51:9d:d7:7c:ee:84:b2:f3: 8e:47:cf:81:cd:5d:39:96:96:d4:ce:be:82:d2:72:af:e7:d6: c3:fc:4a:d8:09:bf:db:1b:8c:79:f2:d7:a6:40:a6:6e:68:48: 8b:b7:5b:cf:31:3a:d2:6d:14:fc:7c:ae:37:13:74:d2:08:49: 2e:a4:50:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MjhFMjExMC8GA1UEBRMoQzg4QzJBQTk0QUFFNUVGOUY0RDQ5N0U4Mzg3QTM5REQx QkNFOTM5RDAeFw0yNDA1MTkwNzMyMjZaFw0yNDA1MjYwNzMyMjZaMBgxFjAUBgNV BAMTDTY2NDlhYjBhLTJjY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChxKeGIgGjSPUGw+5PhjU1J3NJeyHag3ijAfKpQpun2aTJYh56/DJ0suc58/so TzIF/3fIxtIr9dO87/PbTZ5bCyzKbNwHPk875uOVEogdKqTjWaJu6CN0bmOpcmgy P2YWA2i/+YAVwQh9y/6lgNMwRpa+5eyK9iX3ytwCMKvK2bazEpenI07Dh36VTrTq UlHU+WOmVCe+uMpkBhUb8Xp9CBSZJOA6pX8jnYUzw31Y0M0ZczUosQjDMja4rQyj kPpikS0sRncJMybvvEcXR2/Escad6+DTStiHeF9+G3NQWzBEFbOWSf3eqgO35U1Y xSZJRLFVQCbH1f9Gxp5sED1ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNaulhYzj hz2ia9bYlFls0OJ6aQIwHwYDVR0jBBgwFoAUyIwqqUquXvn01JfoOHo53RvOk50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyOEUyL0NFNTQwNkY2NzJF MTExRUVCMDc4MTYxOUM0RjlBRTAyL3lJd3FxVXF1WHZuMDFKZm9PSG81M1J2T2s1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUl3cXFVcXVYdm4wMUpmb09IbzUzUnZPazUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIy OEUyL0NFNTQwNkY2NzJFMTExRUVCMDc4MTYxOUM0RjlBRTAyL3lJd3FxVXF1WHZu MDFKZm9PSG81M1J2T2s1MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEu4dIPSV8bv3O36sBbZvfcG/6XRnzwl0MM1dXXeNXCkweiFwDUfztCL iNk//sCOdH/FpVjZlU19kwfgeICEZj4nb8Fjj8GlbvCZoSWSHEwLTkZWvs5tMJsl hIJereGfbV8HT21+M0jZ4LLydqTL/rOBesLfLpDuOtlo7IO0HyY8pH6SwR4DiZCA CiiBNEOHZoqO2XXauQde1cNSw4m+aFZ2bUlkRIf7DXeStY7gNif0tT8sXDizcTVC Hv1UOFZRndd87oSy845Hz4HNXTmWltTOvoLScq/n1sP8StgJv9sbjHny16ZApm5o SIu3W88xOtJtFPx8rjcTdNIISS6kUCQ= -----END CERTIFICATE-----Generated at Sun May 19 08:24:57 2024 by rpki-client on console-ams.rpki-client.org